$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/47700FAC998F11EEBD7D785DC4F9AE02.roa File: 47700FAC998F11EEBD7D785DC4F9AE02.roa (raw, json) Hash identifier: GB0LyBPkHD+cznxszK2EgHCr7+tTITHWetcjBFxPeIM= Subject key identifier: 24:7C:44:23:83:43:8F:61:FA:51:6B:12:4C:C1:CC:A7:4A:77:2E:6E Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 0600 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/47700FAC998F11EEBD7D785DC4F9AE02.roa Signing time: Wed 13 Dec 2023 08:11:55 +0000 ROA not before: Wed 13 Dec 2023 08:11:55 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58600 IP address blocks: 103.9.40.0/22 maxlen: 24 163.47.104.0/22 maxlen: 24 2403:c900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Dec 13 08:11:55 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6579674b-43e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f7:33:af:ca:cb:bc:2f:9d:dd:ac:11:f6:fb: 32:ad:92:ef:14:b8:63:da:b6:69:54:c8:39:28:4f: 1d:4b:7c:e8:7f:22:a7:54:25:67:74:6b:55:39:6e: 94:c8:69:70:4f:11:a9:ef:47:0b:f7:a2:a3:a7:bf: eb:a8:89:31:e0:d4:15:50:e9:30:80:dc:d8:fa:84: 88:ef:97:8b:14:9b:d0:73:59:83:e6:90:d4:f4:11: 6e:9d:d1:45:07:f0:fb:ec:09:fe:d2:e6:af:2d:f5: 15:93:b1:d9:41:bf:75:cf:ae:89:59:cb:4b:f7:fb: 69:87:03:f6:93:0d:d0:3a:27:b9:d8:e6:62:ca:9c: 62:c7:84:8d:9b:58:1d:2a:b3:a5:43:bf:ac:7d:1b: 7c:51:3b:9b:00:cd:37:f1:04:3b:46:6e:f3:c8:7f: eb:e6:cc:fe:d8:f4:43:50:a6:25:c6:67:18:83:9e: c3:f3:bb:1f:8a:7f:83:33:11:4f:3e:86:b5:86:73: 2e:aa:f8:5e:ff:89:0e:72:b4:a0:3e:83:85:e2:2a: 21:e3:96:f7:f7:6d:00:92:ab:b3:6a:18:47:3f:cf: 8d:f4:c1:ec:1e:a4:60:a7:09:b9:62:b0:45:a3:78: 1b:00:df:78:32:2c:ad:49:ea:ca:a9:05:0d:fa:9e: ea:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7C:44:23:83:43:8F:61:FA:51:6B:12:4C:C1:CC:A7:4A:77:2E:6E X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/47700FAC998F11EEBD7D785DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.40.0/22 163.47.104.0/22 IPv6: 2403:c900::/32 Signature Algorithm: sha256WithRSAEncryption a5:87:3d:49:26:0d:8f:7a:fd:7d:5c:12:ea:b4:fc:ce:db:a7: e8:58:d6:ea:ad:a6:ee:28:69:86:7b:ef:75:09:2f:e5:a7:22: ec:55:e4:80:ba:3e:53:c2:4e:5a:1d:41:ab:04:30:ea:5c:f3: e2:2d:5e:f8:f7:4b:96:d8:f6:9e:38:52:ef:72:f5:40:10:5e: 1a:dc:4b:3f:ed:64:be:95:c7:50:84:a6:29:3f:73:0f:6c:ee: dd:2d:a9:5b:a4:1f:1c:82:8a:c9:24:fb:c6:58:22:18:f8:85: 60:92:f9:4a:dc:42:0f:5c:44:d0:f6:3d:7b:c4:dd:13:f7:72: f0:88:f4:f4:19:fd:0e:c2:f6:9d:95:7f:a6:cc:3f:1f:68:ab: 2d:2b:44:4c:a1:42:72:8b:3f:33:65:0d:a9:12:97:e7:3a:4d: ee:64:cf:03:11:4e:72:e1:57:3d:b2:75:4a:70:5e:69:bf:c8: 67:8f:ee:0e:9e:e2:63:5a:df:bc:dc:b3:d0:e9:e4:67:a9:f0: d7:ac:ea:70:3f:ea:1e:40:85:f5:e9:f8:cf:7a:48:29:fa:c1: 19:3b:a2:a1:44:87:91:c3:81:58:0b:da:b2:82:b1:c1:d9:df: f2:d0:16:88:0d:fc:d0:d3:c7:e0:a8:7f:09:09:6a:2c:0b:39: 47:51:14:6b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjMxMjEzMDgxMTU1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5Njc0Yi00M2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfczr8rLvC+d3awR9vsyrZLvFLhj2rZpVMg5KE8dS3zofyKnVCVndGtVOW6U yGlwTxGp70cL96Kjp7/rqIkx4NQVUOkwgNzY+oSI75eLFJvQc1mD5pDU9BFundFF B/D77An+0uavLfUVk7HZQb91z66JWctL9/tphwP2kw3QOie52OZiypxix4SNm1gd KrOlQ7+sfRt8UTubAM038QQ7Rm7zyH/r5sz+2PRDUKYlxmcYg57D87sfin+DMxFP Poa1hnMuqvhe/4kOcrSgPoOF4ioh45b3920AkquzahhHP8+N9MHsHqRgpwm5YrBF o3gbAN94MiytSerKqQUN+p7qnQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCR8RCOD Q49h+lFrEkzBzKdKdy5uMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvNDc3MDBGQUM5 OThGMTFFRUJEN0Q3ODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnCSgDBAKjL2gwDQQCAAIwBwMFACQDyQAwDQYJKoZIhvcN AQELBQADggEBAKWHPUkmDY96/X1cEuq0/M7bp+hY1uqtpu4oaYZ773UJL+WnIuxV 5IC6PlPCTlodQasEMOpc8+ItXvj3S5bY9p44Uu9y9UAQXhrcSz/tZL6Vx1CEpik/ cw9s7t0tqVukHxyCiskk+8ZYIhj4hWCS+UrcQg9cRND2PXvE3RP3cvCI9PQZ/Q7C 9p2Vf6bMPx9oqy0rREyhQnKLPzNlDakSl+c6Te5kzwMRTnLhVz2ydUpwXmm/yGeP 7g6e4mNa37zcs9Dp5Gep8Nes6nA/6h5AhfXp+M96SCn6wRk7oqFEh5HDgVgL2rKC scHZ3/LQFogN/NDTx+CofwkJaiwLOUdRFGs= -----END CERTIFICATE-----Generated at Fri May 17 01:06:58 2024 by rpki-client on console-fra.rpki-client.org